VYPR
Unrated severityNVD Advisory· Published Jan 8, 2012· Updated Jun 16, 2026

CVE-2011-3206

CVE-2011-3206

Description

Multiple cross-site scripting (XSS) vulnerabilities in the administration interface in RHQ 4.2.0, as used in JBoss Operations Network (aka JON or JBoss ON) before 3.0, allow remote attackers to inject arbitrary web script or HTML via unspecified vectors.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

11
  • cpe:2.3:a:redhat:jboss_operations_network:*:*:*:*:*:*:*:*+ 8 more
    • cpe:2.3:a:redhat:jboss_operations_network:*:*:*:*:*:*:*:*range: <=2.4.1
    • cpe:2.3:a:redhat:jboss_operations_network:2.0.0:*:*:*:*:*:*:*
    • cpe:2.3:a:redhat:jboss_operations_network:2.0.1:*:*:*:*:*:*:*
    • cpe:2.3:a:redhat:jboss_operations_network:2.1.0:*:*:*:*:*:*:*
    • cpe:2.3:a:redhat:jboss_operations_network:2.2:*:*:*:*:*:*:*
    • cpe:2.3:a:redhat:jboss_operations_network:2.3:*:*:*:*:*:*:*
    • cpe:2.3:a:redhat:jboss_operations_network:2.3.1:*:*:*:*:*:*:*
    • cpe:2.3:a:redhat:jboss_operations_network:2.4:*:*:*:*:*:*:*
    • (no CPE)range: < 3.0
  • cpe:2.3:a:rhq-project:rhq:4.2.0:*:*:*:*:*:*:*
  • Red Hat/RHQllm-create
    Range: = 4.2.0

Patches

Vulnerability mechanics

References

5

News mentions

0

No linked articles in our index yet.